Attestable

Provides a remotely attestable MCP server using RA-TLS to verify code integrity during client connections.
  • other

17

GitHub Stars

other

Language

6 months ago

First Indexed

2 months ago

Catalog Refreshed

Documentation & install

Readme and setup notes from the catalogue, plus a client-ready config you can copy for your MCP host.

Installation

Add the following to your MCP client configuration file.

Configuration

View docs
{
  "mcpServers": {
    "kontext-dev-attestable-mcp-server": {
      "command": "docker",
      "args": [
        "run",
        "-itp",
        "--device=/dev/sgx_provision:/dev/sgx/provision",
        "--device=/dev/sgx_enclave:/dev/sgx/enclave",
        "-v",
        "/var/run/aesmd/aesm.socket:/var/run/aesmd/aesm.socket",
        "-p",
        "8000:8000",
        "--rm",
        "gsc-attestable-mcp-server"
      ]
    }
  }
}

Available tools

RA-TLS attestation

Remotely attest the MCP server to MCP clients by embedding an SGX quote and a certificate in the TLS handshake, enabling verification of the running code against a trusted build.

Gramine-based SGX workflow

Builds and signs a container image in a trusted execution environment, then uses Gramine tooling to generate and sign the attestation artifacts.

SGX provisioning and enclave management

Handles provisioning and enclave device access to enable secure hardware execution for the MCP server.

Built by
VeilStrat
AI signals for GTM teams
© 2026 VeilStrat. All rights reserved.All systems operational